nativescript
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is designed to assist with NativeScript mobile development by providing architectural rules, naming conventions, and performance optimization techniques. No malicious patterns or security risks were identified across the codebase.
- [COMMAND_EXECUTION]: The 'Memory Protocol' defined in the skill body instructs the agent to read and write to a local file (
.claude/context/memory/learnings.md). This is a legitimate pattern for maintaining context within the agent's project workspace and does not involve unauthorized access to sensitive system paths. - [PROMPT_INJECTION]: The skill processes external source code files and a persistent memory file. This defines an indirect prompt injection surface; however, the skill's purpose is restricted to technical code review and standards enforcement, which is a standard operational use case.
Audit Metadata